WireGuard

apt update

apt install wireguard

cd /etc/wireguard/ 
umask 077

wg genkey > server.key 
wg pubkey < server.key > server.key.pub

vim /etc/wireguard/wg0.conf

[Interface]
Address = 192.168.0.1/16
PostUp = iptables -A FORWARD -i %i -j ACCEPT;iptables -A FORWARD -o %i -j ACCEPT; iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
PostDown = iptables -D FORWARD -i %i -j ACCEPT;iptables -D FORWARD -o %i -j ACCEPT; iptables -t nat -D POSTROUTING -o eth0 -j MASQUERADE
ListenPort = 51820
PrivateKey = {Server_PrivateKey}

[Peer]
PublicKey = {Client1_PublicKey}
AllowedIPs = 192.168.0.2/32
PersistentKeepalive = 25

[Peer]
PublicKey = {Client2_PublicKey}
AllowedIPs = 192.168.0.3/32
PersistentKeepalive = 25

sudo wg-quick up wg0 
sudo wg-quick down wg0 
sudo wg show

vim /etc/wireguard/wg0.conf

wg genkey > client.key 
wg pubkey < client.key > client.key.pub

[Interface]
PrivateKey = {Client_PrivateKey}
Address = 192.168.0.2/16

[Peer]
PublicKey = {Server_PublicKey}
Endpoint = {Server_IP}:51820
AllowedIPs = 192.168.0.0/16
PersistentKeepalive = 25

sysctl net.ipv4.ip_forward

net.ipv4.ip_forward=1